[Git][security-tracker-team/security-tracker][master] CVE-2021-42392,h2database: Link to fixing commit

Mon Feb 14 17:02:07 GMT 2022


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0961e60f by Markus Koschany at 2022-02-14T18:00:14+01:00
CVE-2021-42392,h2database: Link to fixing commit

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23443,6 +23443,8 @@ CVE-2021-42392 (The org.h2.util.JdbcUtils.getConnection method of the H2 databas
 	- h2database 2.1.210-1 (bug #1003894)
 	NOTE: https://github.com/h2database/h2database/security/advisories/GHSA-h376-j262-vhq6
 	NOTE: https://jfrog.com/blog/the-jndi-strikes-back-unauthenticated-rce-in-h2-database-console/
+	NOTE: Fixed by https://github.com/h2database/h2database/commit/41dd2a4cf89da9dd18239debbf73f88da6184ec7
+	NOTE: https://github.com/h2database/h2database/commit/956c6241868332c5b440f5d55ea8fdc1e51ae4fd
 CVE-2021-42391
 	RESERVED
 CVE-2021-42390



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0961e60f951ffe50cf2a61e66dc5dfa136c0a41c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0961e60f951ffe50cf2a61e66dc5dfa136c0a41c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220214/fe41aa61/attachment.htm>
